@astrox/identity 0.0.16 → 0.0.24

package/lib/cjs/identity/ed25519.js

@@ -1,134 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Ed25519KeyIdentity = exports.Ed25519PublicKey = void 0;
-const agent_1 = require("@astrox/agent");
-const tweetnacl = __importStar(require("tweetnacl"));
-const buffer_1 = require("../buffer");
-const der_1 = require("./der");
-class Ed25519PublicKey {
-    // `fromRaw` and `fromDer` should be used for instantiation, not this constructor.
-    constructor(key) {
-        this.rawKey = key;
-        this.derKey = Ed25519PublicKey.derEncode(key);
-    }
-    static from(key) {
-        return this.fromDer(key.toDer());
-    }
-    static fromRaw(rawKey) {
-        return new Ed25519PublicKey(rawKey);
-    }
-    static fromDer(derKey) {
-        return new Ed25519PublicKey(this.derDecode(derKey));
-    }
-    static derEncode(publicKey) {
-        return der_1.wrapDER(publicKey, der_1.ED25519_OID).buffer;
-    }
-    static derDecode(key) {
-        const unwrapped = der_1.unwrapDER(key, der_1.ED25519_OID);
-        if (unwrapped.length !== this.RAW_KEY_LENGTH) {
-            throw new Error('An Ed25519 public key must be exactly 32bytes long');
-        }
-        return unwrapped;
-    }
-    toDer() {
-        return this.derKey;
-    }
-    toRaw() {
-        return this.rawKey;
-    }
-}
-exports.Ed25519PublicKey = Ed25519PublicKey;
-// The length of Ed25519 public keys is always 32 bytes.
-Ed25519PublicKey.RAW_KEY_LENGTH = 32;
-class Ed25519KeyIdentity extends agent_1.SignIdentity {
-    // `fromRaw` and `fromDer` should be used for instantiation, not this constructor.
-    constructor(publicKey, _privateKey) {
-        super();
-        this._privateKey = _privateKey;
-        this._publicKey = Ed25519PublicKey.from(publicKey);
-    }
-    static generate(seed) {
-        if (seed && seed.length !== 32) {
-            throw new Error('Ed25519 Seed needs to be 32 bytes long.');
-        }
-        const { publicKey, secretKey } = seed === undefined ? tweetnacl.sign.keyPair() : tweetnacl.sign.keyPair.fromSeed(seed);
-        return new this(Ed25519PublicKey.fromRaw(publicKey), secretKey);
-    }
-    static fromParsedJson(obj) {
-        const [publicKeyDer, privateKeyRaw] = obj;
-        return new Ed25519KeyIdentity(Ed25519PublicKey.fromDer(buffer_1.fromHexString(publicKeyDer)), buffer_1.fromHexString(privateKeyRaw));
-    }
-    static fromJSON(json) {
-        const parsed = JSON.parse(json);
-        if (Array.isArray(parsed)) {
-            if (typeof parsed[0] === 'string' && typeof parsed[1] === 'string') {
-                return this.fromParsedJson([parsed[0], parsed[1]]);
-            }
-            else {
-                throw new Error('Deserialization error: JSON must have at least 2 items.');
-            }
-        }
-        else if (typeof parsed === 'object' && parsed !== null) {
-            throw new Error('Deprecated JSON format for Ed25519 keys.');
-        }
-        throw new Error(`Deserialization error: Invalid JSON type for string: ${JSON.stringify(json)}`);
-    }
-    static fromKeyPair(publicKey, privateKey) {
-        return new Ed25519KeyIdentity(Ed25519PublicKey.fromRaw(publicKey), privateKey);
-    }
-    static fromSecretKey(secretKey) {
-        const keyPair = tweetnacl.sign.keyPair.fromSecretKey(new Uint8Array(secretKey));
-        return Ed25519KeyIdentity.fromKeyPair(keyPair.publicKey, keyPair.secretKey);
-    }
-    /**
-     * Serialize this key to JSON.
-     */
-    toJSON() {
-        return [buffer_1.toHexString(this._publicKey.toDer()), buffer_1.toHexString(this._privateKey)];
-    }
-    /**
-     * Return a copy of the key pair.
-     */
-    getKeyPair() {
-        return {
-            secretKey: this._privateKey,
-            publicKey: this._publicKey,
-        };
-    }
-    /**
-     * Return the public key.
-     */
-    getPublicKey() {
-        return this._publicKey;
-    }
-    /**
-     * Signs a blob of data, with this identity's private key.
-     * @param challenge - challenge to sign with this identity's secretKey, producing a signature
-     */
-    async sign(challenge) {
-        const blob = new Uint8Array(challenge);
-        const signature = tweetnacl.sign.detached(blob, new Uint8Array(this._privateKey)).buffer;
-        return signature;
-    }
-}
-exports.Ed25519KeyIdentity = Ed25519KeyIdentity;
-//# sourceMappingURL=ed25519.js.map

package/lib/cjs/identity/ed25519.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"ed25519.js","sourceRoot":"","sources":["../../../src/identity/ed25519.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;AAAA,yCAAiG;AACjG,qDAAuC;AACvC,sCAAuD;AACvD,+BAAwD;AAExD,MAAa,gBAAgB;IA+B3B,kFAAkF;IAClF,YAAoB,GAAgB;QAClC,IAAI,CAAC,MAAM,GAAG,GAAG,CAAC;QAClB,IAAI,CAAC,MAAM,GAAG,gBAAgB,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IAChD,CAAC;IAlCM,MAAM,CAAC,IAAI,CAAC,GAAc;QAC/B,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC;IACnC,CAAC;IAEM,MAAM,CAAC,OAAO,CAAC,MAAmB;QACvC,OAAO,IAAI,gBAAgB,CAAC,MAAM,CAAC,CAAC;IACtC,CAAC;IAEM,MAAM,CAAC,OAAO,CAAC,MAA2B;QAC/C,OAAO,IAAI,gBAAgB,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC;IACtD,CAAC;IAKO,MAAM,CAAC,SAAS,CAAC,SAAsB;QAC7C,OAAO,aAAO,CAAC,SAAS,EAAE,iBAAW,CAAC,CAAC,MAA6B,CAAC;IACvE,CAAC;IAEO,MAAM,CAAC,SAAS,CAAC,GAAwB;QAC/C,MAAM,SAAS,GAAG,eAAS,CAAC,GAAG,EAAE,iBAAW,CAAC,CAAC;QAC9C,IAAI,SAAS,CAAC,MAAM,KAAK,IAAI,CAAC,cAAc,EAAE;YAC5C,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;SACvE;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAWM,KAAK;QACV,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAEM,KAAK;QACV,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;;AA3CH,4CA4CC;AA/BC,wDAAwD;AACzC,+BAAc,GAAG,EAAE,CAAC;AAgCrC,MAAa,kBAAmB,SAAQ,oBAAY;IA4ClD,kFAAkF;IAClF,YAAsB,SAAoB,EAAY,WAAwB;QAC5E,KAAK,EAAE,CAAC;QAD4C,gBAAW,GAAX,WAAW,CAAa;QAE5E,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACrD,CAAC;IA/CM,MAAM,CAAC,QAAQ,CAAC,IAAiB;QACtC,IAAI,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,EAAE,EAAE;YAC9B,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;SAC5D;QAED,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAC5B,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACxF,OAAO,IAAI,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,SAAS,CAAC,CAAC;IAClE,CAAC;IAEM,MAAM,CAAC,cAAc,CAAC,GAAgC;QAC3D,MAAM,CAAC,YAAY,EAAE,aAAa,CAAC,GAAG,GAAG,CAAC;QAC1C,OAAO,IAAI,kBAAkB,CAC3B,gBAAgB,CAAC,OAAO,CAAC,sBAAa,CAAC,YAAY,CAAwB,CAAC,EAC5E,sBAAa,CAAC,aAAa,CAAC,CAC7B,CAAC;IACJ,CAAC;IAEM,MAAM,CAAC,QAAQ,CAAC,IAAY;QACjC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChC,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YACzB,IAAI,OAAO,MAAM,CAAC,CAAC,CAAC,KAAK,QAAQ,IAAI,OAAO,MAAM,CAAC,CAAC,CAAC,KAAK,QAAQ,EAAE;gBAClE,OAAO,IAAI,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;aACpD;iBAAM;gBACL,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;aAC5E;SACF;aAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI,EAAE;YACxD,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;SAC7D;QACD,MAAM,IAAI,KAAK,CAAC,wDAAwD,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAClG,CAAC;IAEM,MAAM,CAAC,WAAW,CAAC,SAAsB,EAAE,UAAuB;QACvE,OAAO,IAAI,kBAAkB,CAAC,gBAAgB,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,UAAU,CAAC,CAAC;IACjF,CAAC;IAEM,MAAM,CAAC,aAAa,CAAC,SAAsB;QAChD,MAAM,OAAO,GAAG,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC;QAChF,OAAO,kBAAkB,CAAC,WAAW,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;IAC9E,CAAC;IAUD;;OAEG;IACI,MAAM;QACX,OAAO,CAAC,oBAAW,CAAC,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC,EAAE,oBAAW,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC;IAC/E,CAAC;IAED;;OAEG;IACI,UAAU;QACf,OAAO;YACL,SAAS,EAAE,IAAI,CAAC,WAAW;YAC3B,SAAS,EAAE,IAAI,CAAC,UAAU;SAC3B,CAAC;IACJ,CAAC;IAED;;OAEG;IACI,YAAY;QACjB,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED;;;OAGG;IACI,KAAK,CAAC,IAAI,CAAC,SAAsB;QACtC,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC;QACvC,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,IAAI,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC;QACzF,OAAO,SAAsB,CAAC;IAChC,CAAC;CACF;AAnFD,gDAmFC"}

package/lib/cjs/identity/webauthn.d.ts

@@ -1,40 +0,0 @@
-import { DerEncodedPublicKey, PublicKey, Signature, SignIdentity } from '@astrox/agent';
-export declare class CosePublicKey implements PublicKey {
-    protected _cose: ArrayBuffer;
-    protected _encodedKey: DerEncodedPublicKey;
-    constructor(_cose: ArrayBuffer);
-    toDer(): DerEncodedPublicKey;
-    getCose(): ArrayBuffer;
-}
-/**
- * A SignIdentity that uses `navigator.credentials`. See https://webauthn.guide/ for
- * more information about WebAuthentication.
- */
-export declare class WebAuthnIdentity extends SignIdentity {
-    readonly rawId: ArrayBuffer;
-    /**
-     * Create an identity from a JSON serialization.
-     * @param json - json to parse
-     */
-    static fromJSON(json: string): WebAuthnIdentity;
-    /**
-     * Create an identity.
-     * @param credentialCreationOptions an optional CredentialCreationOptions Challenge
-     */
-    static create(credentialCreationOptions?: CredentialCreationOptions): Promise<WebAuthnIdentity>;
-    protected _publicKey: CosePublicKey;
-    protected constructor(rawId: ArrayBuffer, cose: ArrayBuffer);
-    getPublicKey(): PublicKey;
-    sign(blob: ArrayBuffer): Promise<Signature>;
-    /**
-     * Allow for JSON serialization of all information needed to reuse this identity.
-     */
-    toJSON(): JsonnableWebAuthnIdentitiy;
-}
-/**
- * ReturnType<WebAuthnIdentity.toJSON>
- */
-export interface JsonnableWebAuthnIdentitiy {
-    publicKey: string;
-    rawId: string;
-}

package/lib/cjs/identity/webauthn.js

@@ -1,205 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.WebAuthnIdentity = exports.CosePublicKey = void 0;
-const agent_1 = require("@astrox/agent");
-const borc_1 = __importDefault(require("borc"));
-const tweetnacl = __importStar(require("tweetnacl"));
-const buffer_1 = require("../buffer");
-const der_1 = require("./der");
-function _coseToDerEncodedBlob(cose) {
-    return der_1.wrapDER(cose, der_1.DER_COSE_OID).buffer;
-}
-/**
- * From the documentation;
- * The authData is a byte array described in the spec. Parsing it will involve slicing bytes from
- * the array and converting them into usable objects.
- *
- * See https://webauthn.guide/#registration (subsection "Example: Parsing the authenticator data").
- *
- * @param authData The authData field of the attestation response.
- * @returns The COSE key of the authData.
- */
-function _authDataToCose(authData) {
-    const dataView = new DataView(new ArrayBuffer(2));
-    const idLenBytes = authData.slice(53, 55);
-    [...new Uint8Array(idLenBytes)].forEach((v, i) => dataView.setUint8(i, v));
-    const credentialIdLength = dataView.getUint16(0);
-    // Get the public key object.
-    return authData.slice(55 + credentialIdLength);
-}
-class CosePublicKey {
-    constructor(_cose) {
-        this._cose = _cose;
-        this._encodedKey = _coseToDerEncodedBlob(_cose);
-    }
-    toDer() {
-        return this._encodedKey;
-    }
-    getCose() {
-        return this._cose;
-    }
-}
-exports.CosePublicKey = CosePublicKey;
-/**
- * Create a challenge from a string or array. The default challenge is always the same
- * because we don't need to verify the authenticity of the key on the server (we don't
- * register our keys with the IC). Any challenge would do, even one per key, randomly
- * generated.
- *
- * @param challenge The challenge to transform into a byte array. By default a hard
- *        coded string.
- */
-function _createChallengeBuffer(challenge = '<ic0.app>') {
-    if (typeof challenge === 'string') {
-        return Uint8Array.from(challenge, c => c.charCodeAt(0));
-    }
-    else {
-        return challenge;
-    }
-}
-/**
- * Create a credentials to authenticate with a server. This is necessary in order in
- * WebAuthn to get credentials IDs (which give us the public key and allow us to
- * sign), but in the case of the Internet Computer, we don't actually need to register
- * it, so we don't.
- * @param credentialCreationOptions an optional CredentialCreationOptions object
- */
-async function _createCredential(credentialCreationOptions) {
-    const creds = (await navigator.credentials.create(credentialCreationOptions !== null && credentialCreationOptions !== void 0 ? credentialCreationOptions : {
-        publicKey: {
-            authenticatorSelection: {
-                userVerification: 'preferred',
-            },
-            attestation: 'direct',
-            challenge: _createChallengeBuffer(),
-            pubKeyCredParams: [{ type: 'public-key', alg: PubKeyCoseAlgo.ECDSA_WITH_SHA256 }],
-            rp: {
-                name: 'Internet Identity Service',
-            },
-            user: {
-                id: tweetnacl.randomBytes(16),
-                name: 'Internet Identity',
-                displayName: 'Internet Identity',
-            },
-        },
-    }));
-    // Validate that it's the correct type at runtime, since WebAuthn does not HAVE to
-    // reply with a PublicKeyCredential.
-    if (creds.response === undefined || !(creds.rawId instanceof ArrayBuffer)) {
-        return null;
-    }
-    else {
-        return creds;
-    }
-}
-// See https://www.iana.org/assignments/cose/cose.xhtml#algorithms for a complete
-// list of these algorithms. We only list the ones we support here.
-var PubKeyCoseAlgo;
-(function (PubKeyCoseAlgo) {
-    PubKeyCoseAlgo[PubKeyCoseAlgo["ECDSA_WITH_SHA256"] = -7] = "ECDSA_WITH_SHA256";
-})(PubKeyCoseAlgo || (PubKeyCoseAlgo = {}));
-/**
- * A SignIdentity that uses `navigator.credentials`. See https://webauthn.guide/ for
- * more information about WebAuthentication.
- */
-class WebAuthnIdentity extends agent_1.SignIdentity {
-    constructor(rawId, cose) {
-        super();
-        this.rawId = rawId;
-        this._publicKey = new CosePublicKey(cose);
-    }
-    /**
-     * Create an identity from a JSON serialization.
-     * @param json - json to parse
-     */
-    static fromJSON(json) {
-        const { publicKey, rawId } = JSON.parse(json);
-        if (typeof publicKey !== 'string' || typeof rawId !== 'string') {
-            throw new Error('Invalid JSON string.');
-        }
-        return new this(buffer_1.fromHexString(rawId), buffer_1.fromHexString(publicKey));
-    }
-    /**
-     * Create an identity.
-     * @param credentialCreationOptions an optional CredentialCreationOptions Challenge
-     */
-    static async create(credentialCreationOptions) {
-        const creds = await _createCredential(credentialCreationOptions);
-        if (!creds || creds.type !== 'public-key') {
-            throw new Error('Could not create credentials.');
-        }
-        const response = creds.response;
-        if (!(response.attestationObject instanceof ArrayBuffer)) {
-            throw new Error('Was expecting an attestation response.');
-        }
-        // Parse the attestationObject as CBOR.
-        const attObject = borc_1.default.decodeFirst(new Uint8Array(response.attestationObject));
-        return new this(creds.rawId, _authDataToCose(attObject.authData));
-    }
-    getPublicKey() {
-        return this._publicKey;
-    }
-    async sign(blob) {
-        const result = (await navigator.credentials.get({
-            publicKey: {
-                allowCredentials: [
-                    {
-                        type: 'public-key',
-                        id: this.rawId,
-                    },
-                ],
-                challenge: blob,
-                userVerification: 'preferred',
-            },
-        }));
-        const response = result.response;
-        if (response.signature instanceof ArrayBuffer &&
-            response.authenticatorData instanceof ArrayBuffer) {
-            const cbor = borc_1.default.encode(new borc_1.default.Tagged(55799, {
-                authenticator_data: new Uint8Array(response.authenticatorData),
-                client_data_json: new TextDecoder().decode(response.clientDataJSON),
-                signature: new Uint8Array(response.signature),
-            }));
-            if (!cbor) {
-                throw new Error('failed to encode cbor');
-            }
-            return cbor.buffer;
-        }
-        else {
-            throw new Error('Invalid response from WebAuthn.');
-        }
-    }
-    /**
-     * Allow for JSON serialization of all information needed to reuse this identity.
-     */
-    toJSON() {
-        return {
-            publicKey: buffer_1.toHexString(this._publicKey.getCose()),
-            rawId: buffer_1.toHexString(this.rawId),
-        };
-    }
-}
-exports.WebAuthnIdentity = WebAuthnIdentity;
-//# sourceMappingURL=webauthn.js.map

package/lib/cjs/identity/webauthn.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"webauthn.js","sourceRoot":"","sources":["../../../src/identity/webauthn.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;AAAA,yCAAwF;AACxF,gDAAwB;AACxB,qDAAuC;AACvC,sCAAuD;AACvD,+BAA8C;AAE9C,SAAS,qBAAqB,CAAC,IAAiB;IAC9C,OAAO,aAAO,CAAC,IAAI,EAAE,kBAAY,CAAC,CAAC,MAA6B,CAAC;AACnE,CAAC;AAED;;;;;;;;;GASG;AACH,SAAS,eAAe,CAAC,QAAqB;IAC5C,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAAC,IAAI,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;IAClD,MAAM,UAAU,GAAG,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;IAC1C,CAAC,GAAG,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3E,MAAM,kBAAkB,GAAG,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IAEjD,6BAA6B;IAC7B,OAAO,QAAQ,CAAC,KAAK,CAAC,EAAE,GAAG,kBAAkB,CAAC,CAAC;AACjD,CAAC;AAED,MAAa,aAAa;IAExB,YAA6B,KAAkB;QAAlB,UAAK,GAAL,KAAK,CAAa;QAC7C,IAAI,CAAC,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IAClD,CAAC;IAEM,KAAK;QACV,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAEM,OAAO;QACZ,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;CACF;AAbD,sCAaC;AAED;;;;;;;;GAQG;AACH,SAAS,sBAAsB,CAAC,YAAiC,WAAW;IAC1E,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE;QACjC,OAAO,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;KACzD;SAAM;QACL,OAAO,SAAS,CAAC;KAClB;AACH,CAAC;AAED;;;;;;GAMG;AACH,KAAK,UAAU,iBAAiB,CAC9B,yBAAqD;IAErD,MAAM,KAAK,GAAG,CAAC,MAAM,SAAS,CAAC,WAAW,CAAC,MAAM,CAC/C,yBAAyB,aAAzB,yBAAyB,cAAzB,yBAAyB,GAAI;QAC3B,SAAS,EAAE;YACT,sBAAsB,EAAE;gBACtB,gBAAgB,EAAE,WAAW;aAC9B;YACD,WAAW,EAAE,QAAQ;YACrB,SAAS,EAAE,sBAAsB,EAAE;YACnC,gBAAgB,EAAE,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG,EAAE,cAAc,CAAC,iBAAiB,EAAE,CAAC;YACjF,EAAE,EAAE;gBACF,IAAI,EAAE,2BAA2B;aAClC;YACD,IAAI,EAAE;gBACJ,EAAE,EAAE,SAAS,CAAC,WAAW,CAAC,EAAE,CAAC;gBAC7B,IAAI,EAAE,mBAAmB;gBACzB,WAAW,EAAE,mBAAmB;aACjC;SACF;KACF,CACF,CAAwB,CAAC;IAE1B,kFAAkF;IAClF,oCAAoC;IACpC,IAAI,KAAK,CAAC,QAAQ,KAAK,SAAS,IAAI,CAAC,CAAC,KAAK,CAAC,KAAK,YAAY,WAAW,CAAC,EAAE;QACzE,OAAO,IAAI,CAAC;KACb;SAAM;QACL,OAAO,KAAK,CAAC;KACd;AACH,CAAC;AAED,iFAAiF;AACjF,mEAAmE;AACnE,IAAK,cAEJ;AAFD,WAAK,cAAc;IACjB,8EAAsB,CAAA;AACxB,CAAC,EAFI,cAAc,KAAd,cAAc,QAElB;AAED;;;GAGG;AACH,MAAa,gBAAiB,SAAQ,oBAAY;IAyChD,YAAsC,KAAkB,EAAE,IAAiB;QACzE,KAAK,EAAE,CAAC;QAD4B,UAAK,GAAL,KAAK,CAAa;QAEtD,IAAI,CAAC,UAAU,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,CAAC;IAC5C,CAAC;IA3CD;;;OAGG;IACI,MAAM,CAAC,QAAQ,CAAC,IAAY;QACjC,MAAM,EAAE,SAAS,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAE9C,IAAI,OAAO,SAAS,KAAK,QAAQ,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE;YAC9D,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;SACzC;QAED,OAAO,IAAI,IAAI,CAAC,sBAAa,CAAC,KAAK,CAAC,EAAE,sBAAa,CAAC,SAAS,CAAC,CAAC,CAAC;IAClE,CAAC;IAED;;;OAGG;IACI,MAAM,CAAC,KAAK,CAAC,MAAM,CACxB,yBAAqD;QAErD,MAAM,KAAK,GAAG,MAAM,iBAAiB,CAAC,yBAAyB,CAAC,CAAC;QAEjE,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE;YACzC,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;SAClD;QAED,MAAM,QAAQ,GAAG,KAAK,CAAC,QAA4C,CAAC;QACpE,IAAI,CAAC,CAAC,QAAQ,CAAC,iBAAiB,YAAY,WAAW,CAAC,EAAE;YACxD,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;SAC3D;QAED,uCAAuC;QACvC,MAAM,SAAS,GAAG,cAAI,CAAC,WAAW,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAC,CAAC;QAE/E,OAAO,IAAI,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,eAAe,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;IACpE,CAAC;IASM,YAAY;QACjB,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAEM,KAAK,CAAC,IAAI,CAAC,IAAiB;QACjC,MAAM,MAAM,GAAG,CAAC,MAAM,SAAS,CAAC,WAAW,CAAC,GAAG,CAAC;YAC9C,SAAS,EAAE;gBACT,gBAAgB,EAAE;oBAChB;wBACE,IAAI,EAAE,YAAY;wBAClB,EAAE,EAAE,IAAI,CAAC,KAAK;qBACf;iBACF;gBACD,SAAS,EAAE,IAAI;gBACf,gBAAgB,EAAE,WAAW;aAC9B;SACF,CAAC,CAAwB,CAAC;QAE3B,MAAM,QAAQ,GAAG,MAAM,CAAC,QAA0C,CAAC;QACnE,IACE,QAAQ,CAAC,SAAS,YAAY,WAAW;YACzC,QAAQ,CAAC,iBAAiB,YAAY,WAAW,EACjD;YACA,MAAM,IAAI,GAAG,cAAI,CAAC,MAAM,CACtB,IAAI,cAAI,CAAC,MAAM,CAAC,KAAK,EAAE;gBACrB,kBAAkB,EAAE,IAAI,UAAU,CAAC,QAAQ,CAAC,iBAAiB,CAAC;gBAC9D,gBAAgB,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAC;gBACnE,SAAS,EAAE,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC;aAC9C,CAAC,CACH,CAAC;YACF,IAAI,CAAC,IAAI,EAAE;gBACT,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;aAC1C;YACD,OAAO,IAAI,CAAC,MAAmB,CAAC;SACjC;aAAM;YACL,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;SACpD;IACH,CAAC;IAED;;OAEG;IACI,MAAM;QACX,OAAO;YACL,SAAS,EAAE,oBAAW,CAAC,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;YACjD,KAAK,EAAE,oBAAW,CAAC,IAAI,CAAC,KAAK,CAAC;SAC/B,CAAC;IACJ,CAAC;CACF;AA9FD,4CA8FC"}

package/lib/cjs/index.d.ts

@@ -1,4 +0,0 @@
-export { Ed25519KeyIdentity, Ed25519PublicKey } from './identity/ed25519';
-export { Delegation, DelegationIdentity, DelegationChain, SignedDelegation, } from './identity/delegation';
-export { WebAuthnIdentity } from './identity/webauthn';
-export { wrapDER, unwrapDER, DER_COSE_OID, ED25519_OID } from './identity/der';

package/lib/cjs/index.js

@@ -1,17 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-var ed25519_1 = require("./identity/ed25519");
-Object.defineProperty(exports, "Ed25519KeyIdentity", { enumerable: true, get: function () { return ed25519_1.Ed25519KeyIdentity; } });
-Object.defineProperty(exports, "Ed25519PublicKey", { enumerable: true, get: function () { return ed25519_1.Ed25519PublicKey; } });
-var delegation_1 = require("./identity/delegation");
-Object.defineProperty(exports, "Delegation", { enumerable: true, get: function () { return delegation_1.Delegation; } });
-Object.defineProperty(exports, "DelegationIdentity", { enumerable: true, get: function () { return delegation_1.DelegationIdentity; } });
-Object.defineProperty(exports, "DelegationChain", { enumerable: true, get: function () { return delegation_1.DelegationChain; } });
-var webauthn_1 = require("./identity/webauthn");
-Object.defineProperty(exports, "WebAuthnIdentity", { enumerable: true, get: function () { return webauthn_1.WebAuthnIdentity; } });
-var der_1 = require("./identity/der");
-Object.defineProperty(exports, "wrapDER", { enumerable: true, get: function () { return der_1.wrapDER; } });
-Object.defineProperty(exports, "unwrapDER", { enumerable: true, get: function () { return der_1.unwrapDER; } });
-Object.defineProperty(exports, "DER_COSE_OID", { enumerable: true, get: function () { return der_1.DER_COSE_OID; } });
-Object.defineProperty(exports, "ED25519_OID", { enumerable: true, get: function () { return der_1.ED25519_OID; } });
-//# sourceMappingURL=index.js.map

package/lib/cjs/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";;AAAA,8CAA0E;AAAjE,6GAAA,kBAAkB,OAAA;AAAE,2GAAA,gBAAgB,OAAA;AAC7C,oDAK+B;AAJ7B,wGAAA,UAAU,OAAA;AACV,gHAAA,kBAAkB,OAAA;AAClB,6GAAA,eAAe,OAAA;AAGjB,gDAAuD;AAA9C,4GAAA,gBAAgB,OAAA;AACzB,sCAA+E;AAAtE,8FAAA,OAAO,OAAA;AAAE,gGAAA,SAAS,OAAA;AAAE,mGAAA,YAAY,OAAA;AAAE,kGAAA,WAAW,OAAA"}

package/lib/esm/buffer.d.ts

@@ -1,10 +0,0 @@
-/**
- * Return an array buffer from its hexadecimal representation.
- * @param hexString The hexadecimal string.
- */
-export declare function fromHexString(hexString: string): ArrayBuffer;
-/**
- * Returns an hexadecimal representation of an array buffer.
- * @param bytes The array buffer.
- */
-export declare function toHexString(bytes: ArrayBuffer): string;

package/lib/esm/buffer.js

@@ -1,16 +0,0 @@
-/**
- * Return an array buffer from its hexadecimal representation.
- * @param hexString The hexadecimal string.
- */
-export function fromHexString(hexString) {
-    var _a;
-    return new Uint8Array(((_a = hexString.match(/.{1,2}/g)) !== null && _a !== void 0 ? _a : []).map(byte => parseInt(byte, 16))).buffer;
-}
-/**
- * Returns an hexadecimal representation of an array buffer.
- * @param bytes The array buffer.
- */
-export function toHexString(bytes) {
-    return new Uint8Array(bytes).reduce((str, byte) => str + byte.toString(16).padStart(2, '0'), '');
-}
-//# sourceMappingURL=buffer.js.map

package/lib/esm/buffer.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"buffer.js","sourceRoot":"","sources":["../../src/buffer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,UAAU,aAAa,CAAC,SAAiB;;IAC7C,OAAO,IAAI,UAAU,CAAC,CAAC,MAAA,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,mCAAI,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;AACnG,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,WAAW,CAAC,KAAkB;IAC5C,OAAO,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC;AACnG,CAAC"}

package/lib/esm/identity/delegation.d.ts

@@ -1,131 +0,0 @@
-import { DerEncodedPublicKey, HttpAgentRequest, PublicKey, Signature, SignIdentity } from '@astrox/agent';
-import { Principal } from '@astrox/principal';
-import * as cbor from 'simple-cbor';
-/**
- * A single delegation object that is signed by a private key. This is constructed by
- * `DelegationChain.create()`.
- *
- * {@see DelegationChain}
- */
-export declare class Delegation {
-    readonly pubkey: ArrayBuffer;
-    readonly expiration: bigint;
-    readonly targets?: Principal[] | undefined;
-    constructor(pubkey: ArrayBuffer, expiration: bigint, targets?: Principal[] | undefined);
-    toCBOR(): cbor.CborValue;
-    toJSON(): JsonnableDelegation;
-}
-/**
- * Type of ReturnType<Delegation.toJSON>.
- * The goal here is to stringify all non-JSON-compatible types to some bytes representation we can
- * stringify as hex.
- * (Hex shouldn't be ambiguous ever, because you can encode as DER with semantic OIDs).
- */
-interface JsonnableDelegation {
-    expiration: string;
-    pubkey: string;
-    targets?: string[];
-}
-/**
- * A signed delegation, which lends its identity to the public key in the delegation
- * object. This is constructed by `DelegationChain.create()`.
- *
- * {@see DelegationChain}
- */
-export interface SignedDelegation {
-    delegation: Delegation;
-    signature: Signature;
-}
-export interface JsonnableDelegationChain {
-    publicKey: string;
-    delegations: Array<{
-        signature: string;
-        delegation: {
-            pubkey: string;
-            expiration: string;
-            targets?: string[];
-        };
-    }>;
-}
-/**
- * A chain of delegations. This is JSON Serializable.
- * This is the object to serialize and pass to a DelegationIdentity. It does not keep any
- * private keys.
- */
-export declare class DelegationChain {
-    readonly delegations: SignedDelegation[];
-    readonly publicKey: DerEncodedPublicKey;
-    /**
-     * Create a delegation chain between two (or more) keys. By default, the expiration time
-     * will be very short (15 minutes).
-     *
-     * To build a chain of more than 2 identities, this function needs to be called multiple times,
-     * passing the previous delegation chain into the options argument. For example:
-     *
-     * @example
-     * const rootKey = createKey();
-     * const middleKey = createKey();
-     * const bottomeKey = createKey();
-     *
-     * const rootToMiddle = await DelegationChain.create(
-     *   root, middle.getPublicKey(), Date.parse('2100-01-01'),
-     * );
-     * const middleToBottom = await DelegationChain.create(
-     *   middle, bottom.getPublicKey(), Date.parse('2100-01-01'), { previous: rootToMiddle },
-     * );
-     *
-     * // We can now use a delegation identity that uses the delegation above:
-     * const identity = DelegationIdentity.fromDelegation(bottomKey, middleToBottom);
-     *
-     * @param from The identity that will delegate.
-     * @param to The identity that gets delegated. It can now sign messages as if it was the
-     *           identity above.
-     * @param expiration The length the delegation is valid. By default, 15 minutes from calling
-     *                   this function.
-     * @param options A set of options for this delegation. expiration and previous
-     * @param options.previous - Another DelegationChain that this chain should start with.
-     * @param options.targets - targets that scope the delegation (e.g. Canister Principals)
-     */
-    static create(from: SignIdentity, to: PublicKey, expiration?: Date, options?: {
-        previous?: DelegationChain;
-        targets?: Principal[];
-    }): Promise<DelegationChain>;
-    /**
-     * Creates a DelegationChain object from a JSON string.
-     *
-     * @param json The JSON string to parse.
-     */
-    static fromJSON(json: string | JsonnableDelegationChain): DelegationChain;
-    /**
-     * Creates a DelegationChain object from a list of delegations and a DER-encoded public key.
-     *
-     * @param delegations The list of delegations.
-     * @param publicKey The DER-encoded public key of the key-pair signing the first delegation.
-     */
-    static fromDelegations(delegations: SignedDelegation[], publicKey: DerEncodedPublicKey): DelegationChain;
-    protected constructor(delegations: SignedDelegation[], publicKey: DerEncodedPublicKey);
-    toJSON(): JsonnableDelegationChain;
-}
-/**
- * An Identity that adds delegation to a request. Everywhere in this class, the name
- * innerKey refers to the SignIdentity that is being used to sign the requests, while
- * originalKey is the identity that is being borrowed. More identities can be used
- * in the middle to delegate.
- */
-export declare class DelegationIdentity extends SignIdentity {
-    private _inner;
-    private _delegation;
-    /**
-     * Create a delegation without having access to delegateKey.
-     *
-     * @param key The key used to sign the reqyests.
-     * @param delegation A delegation object created using `createDelegation`.
-     */
-    static fromDelegation(key: Pick<SignIdentity, 'sign'>, delegation: DelegationChain): DelegationIdentity;
-    protected constructor(_inner: Pick<SignIdentity, 'sign'>, _delegation: DelegationChain);
-    getDelegation(): DelegationChain;
-    getPublicKey(): PublicKey;
-    sign(blob: ArrayBuffer): Promise<Signature>;
-    transformRequest(request: HttpAgentRequest): Promise<unknown>;
-}
-export {};